Ma nn sotttovalutare il potere della nostra mente. tu nn soffri come credevi xke' tua mente aveva capito prima di tuo cuore e di tuo istinto

~ bestiolina

Labels: evolution

pregnant women are among a selected group of people who actually allowed to act insane...

~ Dr. Perry Cox

Labels: quote of the day

experience is what you get when you didnt get what you wanted

Labels: quote of the day

hair short circuit

Labels: evolution

il sole bacia i belli e secca le merde

Labels: quote of the day

The weakness of DNS implementation has been known for years...

Then on 8th July Dan Kaminsky managed to orchestrate simultaneous patch for plenty of vendors...Hmm... a lot of security gurus rather skeptic that Dan found out something new...

Personally I found fascinating why the hell it seems almost ALL vendors whom have recursive DNS implementation are vulnerable?!?
I mean, the vulnerability is caused by several factors one of the it's vulnerable against guessing attack... If security was in mind when writing DNS implementation, they MUST implement randomness on... (btw, even if the DNS server is patched, FW in front of the DNS server will likely has non random source port generation... causing the DNS to become vulnerable again... :(

I was expecting most DNS implementation follows common sense to randomize source port, as DJBDNS... Are developers/software designers so lazy (copying code from BIND?) or dont care about security or they simply dont know?

???

What Dan Kaminsky knows that others dont?!?

Then today a security vendor (by mistake/accident/on purpose) let the cat out of the bag... and put it back in... basically publishing in their blog how this vulnerability works... (Serious security company should never make this kind of mistake...)

SHIT this is really BIG DEAL...

DNS vulnerability is already a big deal for obvious reason, but this one is really BIG DEAL... Internet wasn’t safe.. now it ever more dangerous place to be, the problem is there is not easy quick fix... I guess we just have to live in danger...

Anyway as the most dangerous thing in this world is dangerous things that we do not know they are dangerous... so at least know we know better that trusting DNS result are dangerous...

Labels: security

Labels: evolution

nel 2007 sono stati 589 i morti per droghe sintetiche, primo killer l'ecstasy

Labels: stat of the day

An open mind has but one disadvantage: it collects dirt

Labels: quote of the day

hmmm...
quite one night learning experience... here is my mental note in chronological order:
i should go more ofter to westerpark... beautiful people everywhere...
always buy the ticket in the very last second
never check email during a concert
never ever check email during concert
MALAKA!!! dont bring BB to a concert
why the hell I'm checking email????? AAARGHHHH
always jump into mosh pit
I should go to Joordan more often... alone...

Labels: evolution